2024-04-05 | Hacker Trends

6 Posts

WIFI Credential Dumping: Techniques to retrieve the PSK from a workstation post-compromise - r-tec Cyber Security

https://www.r-tec.net/r-tec-blog-wifi-credential-dumping.html

5 Posts

Rattling the cage of a Sidewinder | StrikeReady Blog

https://blog.strikeready.com/blog/rattling-the-cage-of-a-sidewinder/

5 Posts

GraphSpy – The Swiss Army Knife for Attacking M365 & Entra | Spotit insights

https://insights.spotit.be/2024/04/05/graphspy-the-swiss-army-knife-for-attacking-m365-entra/

5 Posts

From PDFs to Payload: Bogus Adobe Acrobat Reader Installers Distribute Byakugan Malware

https://thehackernews.com/2024/04/from-pdfs-to-payload-bogus-adobe.html

5 Posts

Acuity confirms hackers stole non-sensitive govt data from GitHub repos

https://www.bleepingcomputer.com/news/security/acuity-confirms-hackers-stole-non-sensitive-govt-data-from-github-repos/

4 Posts

BlackGirlsHack - BlackGirlsHack

https://www.blackgirlshack.org/

4 Posts

New Latrodectus malware replaces IcedID in network breaches

https://www.bleepingcomputer.com/news/security/new-latrodectus-malware-replaces-icedid-in-network-breaches/

4 Posts

Cutting Edge, Part 4: Ivanti Connect Secure VPN Post-Exploitation Lateral Movement Case Studies | Google Cloud Blog

https://cloud.google.com/blog/topics/threat-intelligence/ivanti-post-exploitation-lateral-movement

3 Posts

Academics reckon Apple's default apps have privacy pitfalls • The Register

https://go.theregister.com/feed/www.theregister.com/2024/04/05/apple_apps_privacy_study/

3 Posts

New HTTP/2 DoS attack can crash web servers with a single connection

https://www.bleepingcomputer.com/news/security/new-http-2-dos-attack-can-crash-web-servers-with-a-single-connection/

3 Posts

AI-as-a-Service Providers Vulnerable to PrivEsc and Cross-Tenant Attacks

https://thehackernews.com/2024/04/ai-as-service-providers-vulnerable-to.html

3 Posts

Panera Bread week-long IT outage caused by ransomware attack

https://www.bleepingcomputer.com/news/security/panera-bread-week-long-it-outage-caused-by-ransomware-attack/

3 Posts

Abusing the DHCP Administrators Group to Escalate Privileges in Windows Domains | Akamai

https://buff.ly/3TQ5LT6

3 Posts

Costin Raiu on the XZ Utils Backdoor Investigation - Security Conversations

https://securityconversations.com/episode/costin-raiu-on-the-xz-utils-backdoor-investigation/

3 Posts

detections/M365_Oauth_Apps/MaliciousOauthAppDetections.json at main · randomaccess3/detections · GitHub

https://github.com/randomaccess3/detections/blob/main/M365_Oauth_Apps%2FMaliciousOauthAppDetections.json

3 Posts

Visa warns of new JSOutProx malware variant targeting financial orgs

https://www.bleepingcomputer.com/news/security/visa-warns-of-new-jsoutprox-malware-variant-targeting-financial-orgs/

3 Posts

Magento Vulnerability Exploited to Deploy Persistent Backdoor - SecurityWeek

https://www.securityweek.com/magento-vulnerability-exploited-to-deploy-persistent-backdoor/

3 Posts

Pixel Phone Zero-Days Exploited by Forensic Firms - SecurityWeek

https://www.securityweek.com/pixel-phone-zero-days-exploited-by-forensic-firms/

3 Posts

Fake Facebook MidJourney AI page promoted malware to 1.2 million people

https://www.bleepingcomputer.com/news/security/fake-facebook-midjourney-ai-page-promoted-malware-to-12-million-people/

3 Posts

Ivanti CEO Vows Cybersecurity Makeover After Zero-Day Blitz - SecurityWeek

https://www.securityweek.com/ivanti-ceo-vows-cybersecurity-makeover-after-zero-day-blitz/

3 Posts

Don’t Trust the Cache: Exposing Web Cache Poisoning and Deception vulnerabilities | by Anas H Hmaidy | Apr, 2024 | Medium

https://anasbetis023.medium.com/dont-trust-the-cache-exposing-web-cache-poisoning-and-deception-vulnerabilities-3a829f221f52

3 Posts

WIFI Credential Dumping: Techniques to retrieve the PSK from a workstation post-compromise - r-tec Cyber Security

Rattling the cage of a Sidewinder | StrikeReady Blog

GraphSpy – The Swiss Army Knife for Attacking M365 & Entra | Spotit insights

From PDFs to Payload: Bogus Adobe Acrobat Reader Installers Distribute Byakugan Malware

Acuity confirms hackers stole non-sensitive govt data from GitHub repos

BlackGirlsHack - BlackGirlsHack

New Latrodectus malware replaces IcedID in network breaches

Cutting Edge, Part 4: Ivanti Connect Secure VPN Post-Exploitation Lateral Movement Case Studies | Google Cloud Blog

Academics reckon Apple's default apps have privacy pitfalls • The Register

New HTTP/2 DoS attack can crash web servers with a single connection

AI-as-a-Service Providers Vulnerable to PrivEsc and Cross-Tenant Attacks

Panera Bread week-long IT outage caused by ransomware attack

Abusing the DHCP Administrators Group to Escalate Privileges in Windows Domains | Akamai

Costin Raiu on the XZ Utils Backdoor Investigation - Security Conversations

detections/M365_Oauth_Apps/MaliciousOauthAppDetections.json at main · randomaccess3/detections · GitHub

Visa warns of new JSOutProx malware variant targeting financial orgs

Magento Vulnerability Exploited to Deploy Persistent Backdoor - SecurityWeek

Pixel Phone Zero-Days Exploited by Forensic Firms - SecurityWeek

Fake Facebook MidJourney AI page promoted malware to 1.2 million people

Ivanti CEO Vows Cybersecurity Makeover After Zero-Day Blitz - SecurityWeek

Don’t Trust the Cache: Exposing Web Cache Poisoning and Deception vulnerabilities | by Anas H Hmaidy | Apr, 2024 | Medium

US cancer center data breach exposes info of 827,000 patients

New Wave of JSOutProx Malware Targeting Financial Firms in APAC and MENA

Hunting for Persistence in Linux (Part 1): Auditd, Sysmon, Osquery (and Webshells)

Microsoft fixes Windows Sysprep issue behind 0x80073cf2 errors

20220201-linux-persistence.pdf

GitHub - ReconInfoSec/web-traffic-generator: A quick and dirty HTTP/S "organic" traffic generator.

Acuity Responds to US Government Data Theft Claims, Says Hackers Obtained Old Info - SecurityWeek